SCCM 2012 Task Sequence Password

1. I learnt this because I need deploy image without user interaction however I have to make sure put security on other OSDs, so this comes up. I googled a lot and finally come up one solution for myself with some area google not covered.
2. You have to use a Boot Image from Windows Installation Disk to support HTA, I tried the default image from SCCM, didnt work.
3. Import the Windows 8.1 boot.wim from Windows 8.1 64bit installation disk. Add HTA support from Other Compomnents under properties, deploy it to PXE and distribute it to DP.
4. Create a custom Package on network share, put all your custom scripts and hta in it and create package from SCCM 2012, when create package, choose this package contains a source folder, nominate the share to it. I call my package HTA.
5. For this task, we need two scripts.
5.1 : Password.hta

5.2 Shutdown.WSF

6. Put the two files under the share, also copy your site`s ico to the same folder, update the distribution.
7. At your current task sequence, before the task sequence started , for me I add it before format disk, add a group called validation:
Under validation create following tasks:
7.1. Setup Task Sequence Variable （Set your password)
Task Sequence Variable: Password
Value : <yourPassword>
7.2 Run Command Line (Get password and authenticate with your password set in 7.1)
Command line: Password.hta
Package:
HTA
7.3 Run Command Line (Decide shutdown computer or not based on Authencation in 7.2)
Command line: cscript.exe "shutdown.wsf"
Package:
HTA
8. This should help you to add Password Prompt for each task sequence and disable the password from PXE.

Reference:
http://www.petervanderwoude.nl/post/add-hta-support-to-a-boot-image-with-configmgr-2012/
http://www.windows-noob.com/forums/index.php?/topic/2336-password-protect-a-task-sequence/
http://social.technet.microsoft.com/Forums/systemcenter/en-US/84fb4914-21ca-4b9b-88ae-16a247551eb4/password-protect-task-sequence